Support ⇒ Upgrades :: Archives ⇒ Typing http:// --> Internal Server Error and Error 500 :: Archived ⇒ Community Forums ⇒ CPG Dragonfly™ CMS
Forum IndexUpgrades

Archived ⇒ Typing http:// --> Internal Server Error and Error 500


I have got a strange problem.

If someone somewhere (articles, postings, user profile, and so on) is writing "http://" he will get an Internal Server Error oder an Error 500.
Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.


I'm using cpgnuke 9.1.2.1, updated a few weeks ago.


Any ideas? Confused

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
5.0.32-Debian_7etch1 , 5.2.0-8+etch1, 9.1.2.1


Something is strange. The error handler is not processing this, so it appears to be outside of dragonfly.

Can you verify that your site isn't missing any files? Check with your host to ensure your database is intact and not corrupt (or check this yourself). Make sure they do not have some filter breaking your links for example.

If you are still having problems then please post specific details, including hosting details.

Who was logged in, who did what, what were they expecting, what happened, etc.

Now what exactly are they trying to do to get http:// in a post. (as you can see it works fine)

Good luck,

J.
j e r u v y a t y a h o o d o t c o m

Need help? Look here: www.dragonflycms.org/W...d=112.html
Need to chat? Look for me on irc.freenode.net

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Ubuntu7.10/Debian3.1 - 2.2.3/1.3.37 - 5.0.38/4.0.27 - 5.2.1/4.4.7 - CVS/9.1.2}


quote]Who was logged in, who did what, what were they expecting, what happened, etc.
[/quote]
I'm logging in normaly. No problem. But when I try to post "http:/", for example in the ShoutBox, and try to send it, I get the error and have to go back.

Database is intact, all files exists and there are no filters. But I think I've found the error in the error_log:

[error] [client 85.177.***] ModSecurity: Access denied with code 500 (phase 2). Pattern match "(ht|f)tps?:/" at ARGS:comment. [id "300018"] [rev "3"] [msg "Generic PHP code injection protection via ARGS"] [severity "CRITICAL"] [hostname "www.woelfefans.de"] [uri "/portal/index.php?name=Shoutblock"] [unique_id "@Dt3JFP2QHgAABHrn0gAAAAg"]

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
5.0.32-Debian_7etch1 , 5.2.0-8+etch1, 9.1.2.1


Laughing hail to crap servers Laughing

Ask your host to turn off ModSecurity and stop being scared.
He's dealing with professionals when it comes to Dragonfly coders.

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Fedora 25 / Apache 2.4.27 / MariaDB 10.1.26 / PHP 7.1.10 / Mercurial


DJ Maze wrote
Laughing hail to crap servers Laughing

Ask your host to turn off ModSecurity and stop being scared.
He's dealing with professionals when it comes to Dragonfly coders.


Or simply fix the borked mod_security.

Smile

J.
j e r u v y a t y a h o o d o t c o m

Need help? Look here: www.dragonflycms.org/W...d=112.html
Need to chat? Look for me on irc.freenode.net

Server specs (Server OS / Apache / MySQL / PHP / DragonflyCMS):
Ubuntu7.10/Debian3.1 - 2.2.3/1.3.37 - 5.0.38/4.0.27 - 5.2.1/4.4.7 - CVS/9.1.2}

All times are UTC